X.Org X Window Server LibX11 Xinput File Descriptor Leak Vulnerability

X.Org X Window Server libX11 library 'Xinput' module is prone to a file-descriptor leak due to a design error.

The vulnerability arises because the application fails to close a file descriptor after file operations. An attacker can exploit this issue to open files with elevated privileges.

Versions 1.0.2 and 1.0.3 of libX11 are reported affected; other versions may be affected as well.


 

Privacy Statement
Copyright 2010, SecurityFocus